CVE-2024-33807
CVE-2024-33807 : A SQL injection flaw in Campcodes’ Complete Web-Based School Management System v1.0 affects the endpoint /model/get_teacher_timetable.php. The vulnerability allows an attacker to inject arbitrary SQL through the grade parameter. Public sources in the connected documents consisten...